Review Request 54277: AMBARI-19060. Update the HiveServer config values if Security Authorization chosen is None.

Swapan Shridhar Thu, 01 Dec 2016 17:00:07 -0800

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/54277/
-----------------------------------------------------------


Review request for Ambari, Alejandro Fernandez, Sumit Mohanty, and Thejas Nair.


Bugs: AMBARI-19060
    https://issues.apache.org/jira/browse/AMBARI-19060


Repository: ambari


Description
-------

- When hive-env/hive_security_authorization chosen value is None.
- Following configs should be set as: 
  **"hive.server2.enable.doAs"** = "true"
  **"hive.security.authorization.enabled"** = "false", and
- Following configs should be deleted
   **"hive.security.authorization.manager"**
   **"hive.security.authenticator.manager"**
   **"hive.conf.restricted.list"**

Also, if **hive-env/hive_security_authorization** is selected as 
**'sqlstdauth'** or **'ranger'**, the following configs should be set as:

- "hive.conf.restricted.list" = 
"hive.security.authenticator.manager,hive.security.authorization.manager,hive.security.metastore.authorization.manager,
 
hive.security.metastore.authenticator.manager,hive.users.in.admin.role,hive.server2.xsrf.filter.enabled,hive.security.authorization.enabled"


Diffs
-----

  ambari-server/src/main/resources/stacks/HDP/2.2/services/stack_advisor.py 
4854514 

Diff: https://reviews.apache.org/r/54277/diff/


Testing
-------

Yes, manually on cluster.


Thanks,

Swapan Shridhar

Review Request 54277: AMBARI-19060. Update the HiveServer config values if Security Authorization chosen is None.

Reply via email to